Strange file in Windows XP

S

Sue Chaisone

Hi,

This morning, my PC was extremely slow on the Internet and refused any
cooperation with the keyboard or the mouse.

My instant reaction was to hit "Ctrl-Alt-Del" and lookup what programs were
running.

A strange file was running which was not installed by me.
The complete link to the file is:

http://216.95.196.22/passthru/th204.exe//drf1173407703.html

I've tried to remove the file manualy, but the file kept reapearing n the
"running programs".

I use Avast as a Virus Scanner and XoftSpy to remove all Spyware programs.
I also never use FTP on my PC.

Can anybody tell me what this file is and if it is malicious. how to remove
it?

TIA
 
S

Spikey

AVG pounced on it immediately. I know I should have known better!! Running
a full scan now.

:blush:(
 
D

db

you can download
a freeware from microsoft.com
called autoruns.

use it to temporarily
disable it and any others
if needed.

to use autoruns, find
the line item, check it
and double click the filename
to disable the registry key.
after the modifications, reboot.

to reverse the disabling,
just recheck the line item
and double click the name in
autoruns.....

- db
Hi,

This morning, my PC was extremely slow on the Internet and refused any
cooperation with the keyboard or the mouse.

My instant reaction was to hit "Ctrl-Alt-Del" and lookup what programs were
running.

A strange file was running which was not installed by me.
The complete link to the file is:

http://216.95.196.22/passthru/th204.exe//drf1173407703.html

I've tried to remove the file manualy, but the file kept reapearing n the
"running programs".

I use Avast as a Virus Scanner and XoftSpy to remove all Spyware programs.
I also never use FTP on my PC.

Can anybody tell me what this file is and if it is malicious. how to remove
it?

TIA
 
S

Spikey

Spikey said:
AVG pounced on it immediately. I know I should have known better!!
Running a full scan now.
Click to expand...


AVG identified it as Trojan Horse dialler. CKN
 
S

Sue Chaisone

Spikey said:
AVG identified it as Trojan Horse dialler. CKN
Click to expand...

I have Avast anti-virus running on my PC and the file was not detected.

Can you tell me how to get rid of this Virus?
 
S

Spikey

Sue Chaisone said:
I have Avast anti-virus running on my PC and the file was not detected.

Can you tell me how to get rid of this Virus?
Click to expand...

With the latest updates Avast should be up to it. It is possible that it
was a false positive , better that way than not vigilant enough I suppose or
that whatever it was got tacked on somewhere.

I would download and run free AVG ( as it spotted it) and run in normal and
safe mode with tools, folder options, view tab set to show hidden files from
http://free.grisoft.com/doc/avg-anti-virus-free/lng/us/tpl/v5 then do the
same again with Avast.

If nothing is found I think you are pretty certain of being ok. AVQ is
fairly straight forward to understand if it finds something it will attempt
to heal or delete it. And you can take it back off your pc later.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

XP Windows Defender problems- cannot uninstall fully, cannot reins 1
Windows performance issues 10
Windows Installer starts when I drag drop files. 5
Problem, need to keep reinstalling/activating everything, boot.ini file vanished! 2
ftp under windows xp 1
strange fresh install - cannot install Office XP, etc 3
Windows XP crash - files disappear 4
Strange new virus? from thumbdrive? 1

Top